The California Office of the Attorney General reported on December 19, 2014, that American Express Travel Related Services Company, Inc. experienced a data breach on July 11, 2011. The incident involved unauthorized access to a merchant's website which potentially exposed American Express Card account numbers and names, although Social Security numbers were not impacted.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-47795
TPRM report: https://www.rankiteo.com/company/american-express
"id": "ame209080425",
"linkid": "american-express",
"type": "Breach",
"date": "7/2011",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'industry': 'Financial Services',
'name': 'American Express Travel Related Services '
'Company, Inc.',
'type': 'Company'}],
'attack_vector': 'Unauthorized Access',
'data_breach': {'type_of_data_compromised': ['American Express Card account '
'numbers',
'Names']},
'date_detected': '2011-07-11',
'date_publicly_disclosed': '2014-12-19',
'description': "Unauthorized access to a merchant's website potentially "
'exposed American Express Card account numbers and names.',
'impact': {'data_compromised': ['American Express Card account numbers',
'Names']},
'references': [{'date_accessed': '2014-12-19',
'source': 'California Office of the Attorney General'}],
'title': 'American Express Data Breach',
'type': 'Data Breach'}